caracal-core 0.7.0

Pre-execution authority enforcement system for AI agents

Pre-execution authority enforcement for AI agents

---

Overview

Caracal is a pre-execution authority enforcement system for AI agents and automated software operating in production environments. It exists at the boundary where autonomous decisions turn into irreversible actions—API calls, database writes, or system triggers.

By enforcing the principle of explicit authority, Caracal ensures no action executes without a cryptographically verified, time-bound mandate issued under a governing policy.

---

Community

GitHub's Open Source Friday

More coming soon

---

Core Interfaces

1. Caracal SDK (Python & Node.js)

Target: Developers and System Architects.

The second-generation (v2) SDK provides a unified, high-performance interface for integrating Caracal into any agentic loop.

Installation (Python):

pip install caracal-core

Installation (Node.js):

npm install @caracal/core

Fluent API Example:

from caracal.sdk import CaracalClient

client = CaracalClient(api_key="your-key")
context = client.context.checkout(workspace_id="ws_123")

# Register an agent principal
agent = context.agents.create(name="web-scraper", owner="system")

2. Caracal Flow (TUI)

Target: Security Operations and Governance Officers.

Interactive terminal interface for monitoring authority ledgers, managing principals, and initial onboarding.

caracal-flow

---

Technical Architecture

Caracal Core (the open-source foundation) implements the primary enforcement engine:

Component	Description
Principals	Identities (agents/users) with ECDSA P-256 cryptographic keys.
Policies	Fine-grained rules defining resource patterns and allowed actions.
Mandates	Short-lived, signed tokens granting the right to execute an action.
Ledger	High-performance audit trail of every authorization event.

[!NOTE] Enterprise features (Gateway Proxy, SSO Provider, Compliance Extensions) are available on www.garudexlabs.com

---

Project Structure

• caracal/core/: The core policy evaluation and mandate engine.
• caracal/sdk/: The unified Python SDK implementation.
• caracal/flow/: TUI application for management and monitoring.
• caracal/db/: Persistence layer with PostgreSQL and Redis support.
• k8s/: Kubernetes manifests for core component deployment.

---

Citation (Optional but Appreciated)

Caracal is an open-source framework for pre-execution authority enforcement for AI agents controlling delegated actions, with real-time revocation and immutable proof.

If this project contributes to your research, product, or derivative systems, please consider citing it. Citations help us build credibility, advance trustworthy AI security research, and continue developing open infrastructure that benefits the broader ecosystem.

@software{madhuwala2026caracal,
  author    = {Madhuwala, Ryan and Garudex Labs},
  title     = {Caracal: Authority Enforcement Framework for AI Agents},
  year      = {2026},
  publisher = {GitHub},
  url       = {https://github.com/garudex-labs/caracal}
}

---

License

Caracal is open-source software licensed under the Apache-2.0. See the LICENSE file for details.

Developed by Garudex Labs.